From the course: Web Security: OAuth and OpenID Connect (2019)
Join today to access over 22,600 courses taught by industry experts or purchase this course individually.
Overview: Device flow
From the course: Web Security: OAuth and OpenID Connect (2019)
Overview: Device flow
- [Instructor] The final grant type that we'll cover in this course is also one of the newest. The device grant type was defined as RFC 8628 and only finalized in August 2019. This grant type or flow is an odd one but a clear success of the OAuth 2.0 framework. If we think back to when I first explained OAuth, I said it was a framework which was meant to be extended as our tools and technology changes and improves. In 2012 when it was drafted, it was primarily addressing web and mobile apps. Now almost a decade later, the device grant type was designed specifically to handle internet-connected devices with no browser or constrained UI such as a smart appliance, game console or even a kiosk at the airport. Now let's walk through each step to see it in action. First, the user identifies that they want to authenticate. The device request access to the authorization server and identifies itself with a device ID, this is…
Practice while you learn with exercise files
Download the files the instructor uses to teach the course. Follow along and learn by watching, listening and practicing.
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.